$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa File: 9c668317-9f28-4868-b993-30a89bb71db1.roa (raw, json) Hash identifier: lNueGVLMu7lOhb4e4u6G3Zj8Ly4C/NUrcal6u+VZy6s= Subject key identifier: A6:B8:EF:9F:B5:F8:80:41:BA:F2:78:7D:50:A7:CE:F6:08:03:63:6F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0EAA7C603F1AEBC3A7F40E28A109F8FDF210587A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa Signing time: Mon 30 Jun 2025 15:40:27 +0000 ROA not before: Mon 30 Jun 2025 15:40:27 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:aa:7c:60:3f:1a:eb:c3:a7:f4:0e:28:a1:09:f8:fd:f2:10:58:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Jun 30 15:40:27 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=3bad668b6c0b2f2724aa95f7503b63ac28bc0d1f09e7b3fb84ab07fd1dfba932, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:65:78:06:fe:f2:aa:52:a7:f2:b7:1e:45:a2: 89:af:9c:a6:c6:1b:48:b0:5c:41:86:c5:34:36:c2: 3e:a8:80:b1:57:76:c8:31:4c:ed:de:09:1e:fa:af: a7:82:47:0d:2c:1e:93:cb:f7:3e:68:8e:0a:01:b7: 36:f6:a4:ba:b4:97:c6:70:64:cd:47:32:39:38:cc: 19:01:93:3e:0d:55:f9:2f:86:3b:6f:f4:2f:51:ad: 37:b6:7b:eb:11:c1:53:49:9a:69:4a:59:2f:42:a0: 38:e1:ef:58:79:7f:04:88:88:c9:56:51:8a:d6:b4: 0b:9e:6d:35:82:8e:dc:09:2c:57:0d:16:77:ad:bf: 56:49:dc:8e:dd:8b:1a:92:91:d5:d0:16:ae:cb:0a: 36:a0:63:46:f3:19:5c:1f:24:bc:c1:7b:17:ad:9d: b7:66:cd:b4:0e:2b:2a:8a:65:9c:87:fe:57:2a:0b: 32:0b:27:d3:13:c6:1a:25:6a:b1:3f:d5:d5:28:52: 45:fb:59:bd:91:5f:b4:f1:43:40:25:07:4d:d3:b2: 38:17:a7:9f:e6:12:28:78:f9:2a:e7:b9:af:7b:52: 28:8d:8a:7b:60:ad:68:b2:d5:39:92:9a:68:74:2f: fe:e3:1b:65:30:48:78:26:54:8e:79:48:f9:14:2b: c5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B8:EF:9F:B5:F8:80:41:BA:F2:78:7D:50:A7:CE:F6:08:03:63:6F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption 43:9e:a0:d1:1c:25:47:3c:ad:7e:b1:f3:f8:bf:1d:f2:79:f2: 34:32:ae:54:b3:32:a4:85:a2:14:9c:66:74:da:37:19:f5:52: 3b:62:ce:4b:d9:01:aa:d6:ee:c3:63:7a:ff:5f:fd:93:bc:0a: e0:e1:4b:85:aa:0c:39:bf:9b:54:bb:7d:1f:a8:1e:4d:ff:8d: f7:05:1d:6f:cc:fc:41:82:71:66:f9:b6:94:22:11:84:d7:b7: 5d:15:a1:94:98:a8:b4:6a:10:49:21:d5:a5:42:74:5e:7c:07: 03:00:c4:12:dd:8a:e9:a5:cb:c1:ad:01:d4:21:eb:c4:aa:f0: 94:d1:6a:0d:ed:0d:0e:3e:5b:13:09:b6:2f:8a:ca:4e:e2:62: 45:a5:5d:f9:3b:47:e4:13:a7:24:5a:93:3d:27:87:b2:59:3e: e4:4b:8b:54:9b:20:64:d8:7c:8d:80:c4:dc:1a:45:63:e2:01: 56:1d:7b:33:86:92:42:6a:fa:ba:8f:4e:0a:fd:29:e5:1b:94: b0:cc:2e:0d:4b:b5:bc:ad:34:2a:b2:1d:24:cb:53:a8:8c:a3: c6:96:8b:34:e9:6e:b8:e7:80:c6:fe:07:65:56:c6:cb:a1:1c: 8f:cd:04:7c:a6:96:f3:02:61:e3:0e:d1:6a:86:3d:bd:84:40: e5:8f:af:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDqp8YD8a68On9A4ooQn4/fIQWHowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNjMwMTU0MDI3WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmFkNjY4YjZjMGIyZjI3MjRhYTk1Zjc1MDNiNjNhYzI4 YmMwZDFmMDllN2IzZmI4NGFiMDdmZDFkZmJhOTMyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzZXgG/vKqUqfytx5FoomvnKbGG0iwXEGGxTQ2wj6ogLFX dsgxTO3eCR76r6eCRw0sHpPL9z5ojgoBtzb2pLq0l8ZwZM1HMjk4zBkBkz4NVfkv hjtv9C9RrTe2e+sRwVNJmmlKWS9CoDjh71h5fwSIiMlWUYrWtAuebTWCjtwJLFcN Fnetv1ZJ3I7dixqSkdXQFq7LCjagY0bzGVwfJLzBexetnbdmzbQOKyqKZZyH/lcq CzILJ9MTxholarE/1dUoUkX7Wb2RX7TxQ0AlB03TsjgXp5/mEih4+Srnua97UiiN intgrWiy1TmSmmh0L/7jG2UwSHgmVI55SPkUK8VHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUprjvn7X4gEG68nh9UKfO9ggDY28wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzljNjY4MzE3LTlmMjgtNDg2OC1iOTkzLTMwYTg5YmI3MWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBAEOeoNEcJUc8rX6x8/i/HfJ58jQy rlSzMqSFohScZnTaNxn1UjtizkvZAarW7sNjev9f/ZO8CuDhS4WqDDm/m1S7fR+o Hk3/jfcFHW/M/EGCcWb5tpQiEYTXt10VoZSYqLRqEEkh1aVCdF58BwMAxBLdiuml y8GtAdQh68Sq8JTRag3tDQ4+WxMJti+Kyk7iYkWlXfk7R+QTpyRakz0nh7JZPuRL i1SbIGTYfI2AxNwaRWPiAVYdezOGkkJq+rqPTgr9KeUblLDMLg1LtbytNCqyHSTL U6iMo8aWizTpbrjngMb+B2VWxsuhHI/NBHymlvMCYeMO0WqGPb2EQOWPr/U= -----END CERTIFICATE-----Generated at Mon Jul 21 18:08:29 2025 by rpki-client